This event has ended. View the official site or create your own event → Check it out
This event has ended. Create your own
View analytic
Monday, May 8 • 09:00 - Wednesday, May 10 •17:00
Hands on Web Exploitation with Python (3days)

Sign up or log in to save this to your schedule and see who's attending!

This hands on, three (3) day class will help students learn Python programming and scripting as it pertains to penetration testing web applications. Day one (1) will start off with the very basics of the language and is constructed so that users with little programming experience can quickly gain experience. Day two (2) will slowly ramp up into slightly more difficult Python topics and will challenge students to write exploits for vulnerabilities present within a custom vulnerable web application. Day three (3) will increase the difficulty once again, and will cover advanced topics within the Python programming language in the morning, while challenging students to write more advanced exploits for vulnerabilities present within the custom vulnerable web application. The second half of Day three (3) will encourage students to work in teams to complete a single capture the flag challenge. The winning team will win a prize for each of its team members.

Students will need to bring a laptop capable of running at least two virtual machines.

VM #1: Kali Linux (used to develop our scripts)
VM #2: Vulnerable VM provided by trainers 1 month before training begins (Virtual Box and VMWare OVA files will be available)

Students will need to have both of these virtual machines installed prior to the start of the training. Michael and Fred will not have time to provide support for installing these virtual machines when the training begins.

avatar for Michael Born

Michael Born

Senior Security Consultant, Threat Services, NTT Security (US), Inc.
I enjoy breaking into things more than defending, I love Python, can tolerate Ruby, and am always trying to improve at C and Assembly. My current security testing focus is network penetration testing, application penetration testing, mobile application penetration testing, and so... Read More →
avatar for Fred Donovan

Fred Donovan

Application Security Architect | Enjoy discussions on "hacking back" | Friend and brother to many

Monday May 8, 2017 09:00 - Wednesday May 10, 2017 17:00
Glenbank Suite Hilton

Attendees (9)